nt0xa / sonar
Sonar is a security researcher's Swiss army knife for finding and exploiting vulnerabilities that require out-of-band interactions
☆13Updated last month
Alternatives and similar repositories for sonar:
Users that are interested in sonar are comparing it to the libraries listed below
- Prototype Pollution Scanner☆113Updated 3 years ago
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- ☆173Updated 3 years ago
- Burpsuite plugin for Interact.sh☆216Updated 9 months ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆158Updated last year
- ☆152Updated 2 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆128Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 4 years ago
- Nuclei templates written by us.☆267Updated 3 years ago
- Wordlist to bruteforce for LFI☆123Updated 5 years ago
- Generate wordlists for fuzzing API method names☆55Updated 4 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- Tool for catching and logging different types of requests.☆220Updated 4 years ago
- Identify virtual hosts by similarity comparison☆118Updated 7 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆48Updated 4 months ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- A permutation generation tool written in golang☆210Updated 5 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- ☆42Updated 4 years ago
- ☆70Updated 3 years ago
- ☆95Updated 3 years ago
- ☆87Updated 3 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆150Updated 4 years ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆126Updated this week
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆153Updated 2 years ago
- Hidden parameters discovery suite☆223Updated 2 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆117Updated 3 years ago
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Updated 2 years ago